
<%if ( session.getAttribute("user")==null ) {
    org.apache.log4j.Category.getInstance("Security").warn("Access Denied for " + request.getRemoteAddr());%>
<jsp:forward page="/index.html" />
<%}%>
